Selective display of private user information

ABSTRACT

Methods, systems and computer readable media described herein may facilitate the automatic identification of a need for additional authentication based on a received private message or PID, the urgency of a received private message, thus determining whether an immediate alert is output to a user, and/or a determination whether a protected message is to be archived for later retrieval via authentication. A device may be configured (e.g., by user input) to control selective decoding and display of messages (e.g., private messages), registration and configuration of blacklists, and/or defining criteria for determining urgency of a received message. Device configurations may be dynamically changed or updated according to user preferences and user treatment of received messages.

CROSS REFERENCE TO RELATED APPLICATION

This application is a non-provisional application claiming the benefitof U.S. Provisional Application Ser. No. 62/175,727, entitled“Selectively Decoding and Presenting Private User Information,” whichwas filed on Jun. 15, 2015, and is incorporated herein by reference inits entirety.

TECHNICAL FIELD

This disclosure relates to the selective display of private userinformation.

BACKGROUND

A customer premise equipment (CPE) device such as a gateway device orset-top box (STB) is typically provided by a multiple-system operator(MSO) to a subscriber so that the subscriber may receive multimediaservices offered by the MSO. The CPE device can be used by thesubscriber to access a variety of data services, telephony or voiceservices, and multimedia services, including but not limited to live orlinear television, digital video recorder (DVR) content, video-on-demand(VoD) content, over-the-top (OTT) content, and others.

Advanced technologies enable devices to send and receive messages fromother devices. Also, these messages may be sent to all devices connectedto a network where a user has authorization to view content so that theuser gets the message on all user devices. This creates a problem withthe security of the message. Sometimes these devices present privatemessages on devices that are not being used in a private manner. Forexample, a user may find it undesirable to receive a private messagewhen the user is watching content with others (friends, family members,etc.). Message forwarding techniques may allow a message that is sent toa mobile phone to be routed to another network and traverse through adifferent path to reach other devices connected to a home network oroffice network.

Since mobile phones are typically operated by users using a securitypass code, privacy issues might not arise with content viewed on amobile phone. However, if the same message is provided through adifferent device (e.g., television), then the user might not beexpecting the message to be displayed at the different device. Forexample, a message received on a phone might also be received anddisplayed on a television through a customer premise equipment (CPE)device such as a set-top box (STB).

Moreover, calls received on a VoIP (voice over Internet protocol) phonemay be confidential and may require authentication before beingdisplayed on a television. If someone calls on a VoIP phone, the call istypically routed through a headend in which the call is translated to anAGM (application gateway message). The message traverses through a QAM(quadrature amplitude modulation) network and reaches a target client(e.g., STB, gateway, etc.). The message may be processed and displayedon a television. Also, if there are multiple clients within a home, thenmessages/calls may be displayed on all connected televisions, but a usermight not want all messages/calls, especially private messages/calls tobe displayed on all connected televisions.

Various undesirable consequences may arise when a user does not have theoption to configure privacy settings for received messages, calls, andother information. Therefore, it is desirable to improve upon methodsand systems for forwarding communications at CPE devices within asubscriber premise.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a block diagram illustrating an example network environmentoperable to facilitate the selective forwarding of communicationinformation.

FIG. 2 is a block diagram illustrating an example customer premiseequipment (CPE) device operable to facilitate the selective forwardingof communication information.

FIG. 3 is a flowchart illustrating an example process operable tofacilitate the selective forwarding of communication information basedon an identified packet identifier (PID) of the communication.

FIG. 4 is a flowchart illustrating an example process operable tofacilitate the selective forwarding of communication information basedon a source identifier of the communication.

FIG. 5 is a flowchart illustrating an example process operable tofacilitate the selective forwarding of communication information basedon the number of times a communication is delivered to a device.

FIG. 6 is a block diagram of a hardware configuration operable tofacilitate the selective forwarding of communication information.

Like reference numbers and designations in the various drawings indicatelike elements.

DETAILED DESCRIPTION

It is desirable to improve upon methods and systems for forwardingcommunications at CPE devices within a subscriber premise. Methods,systems and computer readable media described herein may facilitate theautomatic identification of a need for additional authentication basedon a received private message or PID, the urgency of a received privatemessage, thus determining whether an immediate alert is output to auser, and/or a determination whether a protected message is to bearchived for later retrieval via authentication. A device may beconfigured (e.g., by user input) to control selective decoding anddisplay of messages (e.g., private messages), registration andconfiguration of blacklists, and/or defining criteria for determiningurgency of a received message. Device configurations may be dynamicallychanged or updated according to user preferences and user treatment ofreceived messages.

The feature described herein allows phone messages, caller ID,appointment reminders, and notices to be sent to display via a CPEdevice. Private user data is sent as an application gateway stream froma central office (e.g., headend). The application gateway stream carriesan application gateway message. The application gateway message PID isdefined in an application gateway descriptor associated with anauxiliary configuration message. For example, the auxiliaryconfiguration message is received on the EMM PID. The CPE deviceconfigures the acquisition filter on the application gateway messagePID, extracts the private user message and passes it up to theapplication for display.

An embodiment of the invention described herein may include a methodcomprising: (a) receiving a communication at a customer premiseequipment device; (b) identifying a property of the receivedcommunication; (c) comparing the identified property to one or moreprivate communication properties, the one or more private communicationproperties comprising properties of communications that are designatedfor privacy protection; (d) if the identified property does not match atleast one of the one or more properties, outputting informationassociated with the communication to a display; and (e) if theidentified property does match at least one of the one or moreproperties, refraining from outputting, to a display, informationassociated with the communication until a valid passcode is received.

According to an embodiment of the invention, the identified property ofthe received communication comprises a packet identifier, and the one ormore private communication properties comprise one or more packetidentifiers designated for privacy protection.

According to an embodiment of the invention, the identified property ofthe received communication comprises a source identifier, and the one ormore private communication properties comprise one or more sourceidentifiers designated for privacy protection.

According to an embodiment of the invention, the identified property ofthe received communication comprises a version identifier, and the oneor more private communication properties comprise one or more versionidentifiers and, for each respective version identifier, a count of thenumber of times a communication having the respective version identifierhas been previously received at the customer premise equipment device.

According to an embodiment of the invention, the method described hereinfurther comprises: (a) if the identified property does match at leastone of the one or more properties: (i) outputting a notification to auser that a privacy protected communication has been received at thecustomer premise equipment device; (ii) receiving a valid passcode; and(iii) outputting information associated with the communication to adisplay.

According to an embodiment of the invention, the notification comprisesa prompt requesting entry of a valid passcode.

According to an embodiment of the invention, the method described hereinfurther comprises storing information associated with the communicationat the customer premise equipment device.

An embodiment of the invention described herein may include an apparatuscomprising: (a) one or more interfaces configured to be used to receivea communication; and (b) one or more modules configured to: (i) identifya property of the received communication; (ii) compare the identifiedproperty to one or more private communication properties, the one ormore private communication properties comprising properties ofcommunications that are designated for privacy protection; (iii) if theidentified property does not match at least one of the one or moreproperties, output information associated with the communication to adisplay; and (iv) if the identified property does match at least one ofthe one or more properties, refrain from outputting, to a display,information associated with the communication until a valid passcode isreceived.

According to an embodiment of the invention, if the identified propertydoes match at least one of the one or more properties, the one or moremodules are further configured to: (a) output a notification to a userthat a privacy protected communication has been received at the customerpremise equipment device; (b) receive a valid passcode; and (c) outputinformation associated with the communication to a display.

According to an embodiment of the invention, the notification comprisesa prompt requesting entry of a valid passcode.

An embodiment of the invention described herein may include one or morenon-transitory computer readable media having instructions operable tocause one or more processors to perform the operations comprising: (a)receiving a communication at a customer premise equipment device; (b)identifying a property of the received communication; (c) comparing theidentified property to one or more private communication properties, theone or more private communication properties comprising properties ofcommunications that are designated for privacy protection; (d) if theidentified property does not match at least one of the one or moreproperties, outputting information associated with the communication toa display; and (e) if the identified property does match at least one ofthe one or more properties, refraining from outputting, to a display,information associated with the communication until a valid passcode isreceived.

According to an embodiment of the invention, if the identified propertydoes match at least one of the one or more properties, the instructionsare further operable to cause one or more processors to perform theoperations comprising: (a) outputting a notification to a user that aprivacy protected communication has been received at the customerpremise equipment device; (b) receiving a valid passcode; and (c)outputting information associated with the communication to a display.

According to an embodiment of the invention, the notification comprisesa prompt requesting entry of a valid passcode.

According to an embodiment of the invention, the instructions arefurther operable to cause one or more processors to perform theoperations comprising storing information associated with thecommunication at the customer premise equipment device.

FIG. 1 is a block diagram illustrating an example network environment100 operable to facilitate the selective forwarding of communicationinformation. In embodiments, video, voice, and/or data services may bedelivered to one or more client devices 105. Client devices 105 mayinclude televisions, mobile devices, tablets, computers, set-top boxes(STB), telephones (e.g., voice over Internet protocol (VoIP)telephones), gaming devices, and any other device operable to receivevideo, voice, and/or data services. It should be understood that variousdata, multimedia, and/or voice services may be delivered to the clientdevices 105, including but not limited to, live or broadcast television,video-on-demand (VoD) content, pay-per view content, recorded content(e.g., DVR content), audio-only content, streaming content, and others.

In embodiments, one or more services delivered to a subscriber premisesmay be received and forwarded to one or more client devices 105 by acustomer premise equipment (CPE) device such as an access device 110 andor STB 115. An access device 110 may include a gateway device (e.g.,residential gateway, multimedia gateway, etc.), a router, a wirelessnetwork extender, or any other device configured to route communicationsto and from one or more client devices 105. It should be understood thatthe devices shown in FIG. 1 may be integrated. For example, a clientdevice 105 such as a television may be connected to a STB 115, an accessdevice 110, and/or may be directly connected to an upstream network.

In embodiments, multiple services (e.g., video, voice, and/or dataservices) may be delivered from a wide-area network (WAN) 120 to anaccess device 110 or STB 115 through a connection between the device anda provider network 125. The provider network 125 may include an opticalnetwork, hybrid fiber coaxial (HFC) network, digital subscriber line(DSL) network, twisted-pair, mobile network, high-speed data network,MoCA network, and others. Multiple systems operator (MSO) or serviceprovider devices and/or networks within the WAN 120 may be used toprovide, manage, and/or troubleshoot the multiple services provided tosubscribers. In embodiments, a STB 115 may receive one or more servicesfrom an access device 110. For example, network communications/messages,Internet protocol television (IPTV) content or any other streamingcontent may be streamed from the access device 110 to the STB 115 foroutput to an associated display device (e.g., television).

In embodiments, multiple services may be delivered from an access device110 or STB 115 to one or more client devices 105 through a localnetwork. The local network may include a local area network (LAN),wireless local area network (WLAN), personal area network (PAN),Multimedia over Coax Alliance (MoCA) network, mobile hotspot network,and others. The local network may be provided at a subscriber premisesby the access device 110 or one or more other access points within thepremises. It will be appreciated by those skilled in the relevant artthat delivery of the multiple services over the local network may beaccomplished using a variety of standards and formats.

In embodiments, a CPE device may be configured to receive communicationsor messages from upstream network components or other device within anassociated subscriber premise. The CPE device may forward a receivedcommunication to another device such as a connected or associateddisplay device or other client device 105. The CPE device may forwardthe received communication for display of content or other informationassociated with the communication.

Various settings may allow configuration of which messages are to beprotected when received by a CPE device. A setting may be used to allowthe user to determine if all messages received by a CPE device can beoutput or forwarded for display or only priority messages should bedisplayed. In embodiments, a user can register specific types ofmessages, messages received from specific sources (e.g., phone numbers),and/or messages of a specific version that are to be protected. Forexample, a version field may be used in an application gateway message(AGM).

In embodiments, message display may be protected by a PIN (personalidentification number). When the user keys in a valid PIN, the messagemay be displayed on one or more associated devices. In embodiments, at aheadend or other network element or server, a normal PID (packetidentifier) may be defined for AGM messages and a special PID may bedefined for messages that are to be protected. For example, headendsoftware can implement an algorithm to determine which messages need tobe treated as a default message (e.g., normal PID) and which ones needto be treated as a protected message (e.g., the special PID). Messagesthat arrive at a CPE device with the default PID can be displayed, andmessages that arrive at the CPE device with the special PID may bedisplayed only upon entry of an associated PIN.

In embodiments, a mobile phone may be configured in such a way that if acall is not answered in a certain number of rings then the call isforwarded to a VoIP (voice over Internet protocol) phone connectedwithin a subscriber premise. This can trigger a message/caller-IDdisplay on a television. A mobile application, developed for thispurpose, may have a feature to block this mechanism for confidentialnumber(s) to avoid privacy issues. In embodiments, each mobile devicemay be registered with one or more STBs to view the call history of thephone.

In embodiments, a PIN is set at a CPE device to allowmessages/caller-ID, and other information to be displayed on atelevision. The PIN can be set for each individual CPE device of aplurality of CPE devices if the devices are separately connected to anupstream network element. Where CPE devices are connected through a homegateway, then a common PIN may be set to allow the display of callerID/messages or other information. This allows users to view informationon any connected television within a home.

In embodiments, all calls received from a VoIP phone can be cached in aCPE device and can be displayed on a television. For example, callhistory (e.g., caller ID, received time, etc.) may be stored at one ormore CPE devices for access by a user. The number of calls to cache canbe based on the memory availability on a CPE device.

In embodiments, via a settings menu, the user may configure the CPEdevice with the type of messages to be displayed (e.g., All or Prioritymessages). If “All” is chosen, all messages will be displayed.Alternatively, only certain messages (i.e., messages not designated forprivacy protection) may be displayed.

In embodiments, an upstream device or server may use a reserved bitfield in an AGM message to indicate priority or privacyprotection/restrictions. For example, when a message with this bit fieldset to 1 arrives at the CPE device, it would imply “special message” andthe CPE device would only display the message upon entry of a validPIN/password. If the bit field is set to 0, it would imply an ordinarymessage, and the CPE device would display the message withoutauthentication.

In embodiments, via a settings menu, a user may register the phonenumbers whose messages/notifications/caller ID should be protected.Headend software may provide the phone number along with the message tothe CPE device. The platform can compare the user configured numberagainst the number from which the message/call was received anddetermine if it can be displayed or not.

In embodiments, a version field may be associated in the “applicationgateway message.” If the message with the same version is received morethan a specified number of times (for example 5 times or any othernumber of times as configured by a user), the platform will interpretthe message as urgent (e.g., SOS message), which indicates that themessage needs the immediate attention of the user. Based on theinterpretation of the message as urgent, the message can be sent up tothe application for immediate display. If the version differs, it wouldarchive the message for retrieval by the user via authentication (PIN).

It should be understood that the features described herein may beenabled/disabled through a toggle (on/off) in a settings menu (e.g.,Caller ID: ON/OFF; Message: ON/OFF).

FIG. 2 is a block diagram illustrating an example CPE device 200operable to facilitate the selective forwarding of communicationinformation. The CPE device 200 may include a network interface 205, acommunication forwarding module 210, a privacy settings data store 215,a communication information data store 220, and a client interface 225.The CPE device 200 may be an access device 110 of FIG. 1, a STB 115 ofFIG. 1, or any other device configured to deliver one or more servicesto a client device (e.g., client device 105 of FIG. 1).

In embodiments, one or more messages or communications may be receivedat the CPE device 200 via the network interface 205. The CPE device 200may be configured to receive communications or messages from upstreamnetwork components or other device within an associated subscriberpremise. The CPE device 200 may forward a received communication toanother device such as a connected or associated display device or otherclient device 105 through the client interface 225.

In embodiments, a default PID may be defined for general AGM messagesand a special PID may be defined for messages to be protected. Forexample, the default PID and special PID may be stored and updated atthe privacy settings data store 215. The headend software may implementan algorithm to determine which messages will be sent on “default” PIDand which ones will be sent on the “special” PID. Messages that arriveat the CPE device 200 on the default PID may be displayed withoutauthentication. Messages that arrive at the CPE device 200 on thespecial PID may be archived within the communication information datastore 220, and the user can only be alerted about the arrival of themessage. Upon user request, the private or protected message may bedisplayed on entry of a correct PIN. The communication forwarding module210 may be configured to recognize whether a PID of a receivedcommunication is a default PID or a special PID.

The privacy settings data store 220 may include various settingscontrolling which messages are to be protected when received by the CPEdevice 200. A setting may be used to allow the user to determine if allmessages received by the CPE device 200 can be output or forwarded fordisplay or only priority messages should be displayed. In embodiments, auser can register specific types of messages, messages received fromspecific sources (e.g., phone numbers), and/or messages of a specificversion that are to be protected. For example, a version field may beused in an application gateway message (AGM).

In embodiments, the communication forwarding module 210 may output amessage or communication information deemed to be protected when a validPIN/password is received. When the user keys in a valid PIN, thecommunication forwarding module 210 may cause the message to bedisplayed on one or more associated devices.

In embodiments, via the privacy settings data store 215, a user mayregister the phone numbers whose messages/notifications/caller ID shouldbe protected. Headend software may provide the phone number along withthe message to the CPE device 200, and the communication forwardingmodule 210 can compare the user configured number against the numberfrom which the message/call was received and determine if it can bedisplayed or not.

In embodiments, when a message is designated for privacy protection, themessage and/or associated communication information may be temporarilystored or cached at the communication information data store 220.

FIG. 3 is a flowchart illustrating an example process 300 operable tofacilitate the selective forwarding of communication information basedon an identified PID of the communication. The process 300 can begin at305, when a communication is received at a CPE device. The CPE devicemay be an access device 110 of FIG. 1, a STB 115 of FIG. 1, or any otherdevice configured to provide one or more services to a client device(e.g., client device 105 of FIG. 1). The received communication may be atelephone call or message, an appointment or calendar reminder, anelectronic mail message, a notification of a received message,communication information (e.g., caller identification information), andvarious other types of communications.

At 310, a PID (packet identifier) of the communication may bedetermined. The PID may be determined, for example, by the communicationforwarding module 210 of FIG. 2. In embodiments the PID may be parsedfrom the received communication and analyzed by the communicationforwarding module 210.

At 315, a determination may be made whether the PID is designated forprivacy protection. The determination whether the PID is designated forprivacy protection may be made, for example, by the communicationforwarding module 210 of FIG. 2. In embodiments, the communicationforwarding module 210 may compare the PID to one or more PID values thatare designated for privacy protection (e.g., PID values stored at theprivacy settings data store 215 of FIG. 2). For example, the CPE devicemay be configured with one or more PID values that are designated forprivacy protection. A received PID that matches a PID value designatedfor privacy protection may be temporarily withheld from display until avalid password or PIN is received. It should be understood that the CPEdevice may be configured with PID values designated for privacyprotection via input from a user, MSO, technician, manufacturer, and/orothers, or the PID values may be updated at a CPE device asconfiguration updates.

If, at 315, the determination is made that the PID does not match a PIDvalue designated for privacy protection, the process 300 may proceed to320. At 320, communication information associated with the receivedcommunication may be output for display. The communication informationmay be output, for example, by the communication forwarding module 210of FIG. 2 to a connected or associated display device (e.g., clientdevice 105 of FIG. 1). In embodiments, the communication information mayinclude a telephone voice or text message, a telephone call, calleridentification information (e.g., caller name, location, phone number,etc.), a notification, a reminder, or other content or informationassociated with a message received at the CPE device.

If, at 315, the determination is made that the PID matches a PID valuedesignated for privacy protection, the process 300 may proceed to 325.At 325, a notification of the communication being received may beoutput. The notification of the communication being received may beoutput, for example, by the communication forwarding module 210 of FIG.2 to a connected or associated display device (e.g., client device 105of FIG. 1). In embodiments, the notification may only include enoughinformation to inform a viewer that a communication has been received.For example, to protect the privacy of the message, the notification maynot include any information identifying the sender or the content of thereceived communication. In embodiments, when the determination is madethat the communication is to be protected, the communication forwardingmodule 210 may cause the communication and/or information associatedwith the communication to be temporarily stored or cached at the CPEdevice (e.g., at the communication information data store 220 of FIG.2).

At 330, a valid PIN/password may be received. The valid PIN/password maybe received, for example, by the communication forwarding module 210 ofFIG. 2. In embodiments, a user may request that the communication beoutput for display, and in response, the CPE device may output a promptto a display device, the prompt requesting that the user input a validPIN/password. For example, the CPE device may be configured with aPIN/password to protect the privacy of certain communications. The CPEdevice (e.g., the communication forwarding module 210) may compare areceived PIN/password to a PIN/password with which the CPE device isconfigured, and if the PIN/password received from the user matches thePIN/password configured at the CPE device, the determination may be madethat a valid PIN/password has been received.

At 335, the communication and/or information associated with thecommunication may be output for display. The communication informationmay be output, for example, by the communication forwarding module 210of FIG. 2 to a connected or associated display device (e.g., clientdevice 105 of FIG. 1). In embodiments, the communication information mayinclude a telephone voice or text message, a telephone call, calleridentification information (e.g., caller name, location, phone number,etc.), a notification, a reminder, or other content or informationassociated with a message received at the CPE device.

FIG. 4 is a flowchart illustrating an example process 400 operable tofacilitate the selective forwarding of communication information basedon a source identifier of the communication. The process 400 can beginat 405, when a communication is received at a CPE device. The CPE devicemay be an access device 110 of FIG. 1, a STB 115 of FIG. 1, or any otherdevice configured to provide one or more services to a client device(e.g., client device 105 of FIG. 1). The received communication may be atelephone call or message, an appointment or calendar reminder, anelectronic mail message, a notification of a received message,communication information (e.g., caller identification information), andvarious other types of communications.

At 410, a source identifier of the communication may be determined. Thesource identifier may be determined, for example, by the communicationforwarding module 210 of FIG. 2. In embodiments the source identifiermay be parsed from the received communication and analyzed by thecommunication forwarding module 210. The source identifier may include aname, location, telephone number, electronic mail address, social mediaaddress or name, IP address, media access control (MAC) address, and anyother information that may be used to identify the source of thereceived communication.

At 415, a determination may be made whether the source identifier isdesignated for privacy protection. The determination whether the sourceidentifier is designated for privacy protection may be made, forexample, by the communication forwarding module 210 of FIG. 2. Inembodiments, the communication forwarding module 210 may compare thesource identifier to one or more source identifiers that are designatedfor privacy protection (e.g., source identifiers stored at the privacysettings data store 215 of FIG. 2). For example, the CPE device may beconfigured with one or more source identifiers that are designated forprivacy protection. A received source identifier that matches a sourceidentifier designated for privacy protection may be temporarily withheldfrom display until a valid password or PIN is received. It should beunderstood that the CPE device may be configured with source identifiersdesignated for privacy protection via input from a user, MSO,technician, manufacturer, and/or others, or the source identifiers maybe updated at a CPE device as configuration updates.

If, at 415, the determination is made that the source identifier doesnot match a source identifier designated for privacy protection, theprocess 400 may proceed to 420. At 420, communication informationassociated with the received communication may be output for display.The communication information may be output, for example, by thecommunication forwarding module 210 of FIG. 2 to a connected orassociated display device (e.g., client device 105 of FIG. 1). Inembodiments, the communication information may include a telephone voiceor text message, a telephone call, caller identification information(e.g., caller name, location, phone number, etc.), a notification, areminder, or other content or information associated with a messagereceived at the CPE device.

If, at 415, the determination is made that the source identifier matchesa source identifier designated for privacy protection, the process 400may proceed to 425. At 425, a notification of the communication beingreceived may be output. The notification of the communication beingreceived may be output, for example, by the communication forwardingmodule 210 of FIG. 2 to a connected or associated display device (e.g.,client device 105 of FIG. 1). In embodiments, the notification may onlyinclude enough information to inform a viewer that a communication hasbeen received. For example, to protect the privacy of the message, thenotification may not include any information identifying the sender orthe content of the received communication. In embodiments, when thedetermination is made that the communication is to be protected, thecommunication forwarding module 210 may cause the communication and/orinformation associated with the communication to be temporarily storedor cached at the CPE device (e.g., at the communication information datastore 220 of FIG. 2).

At 430, a valid PIN/password may be received. The valid PIN/password maybe received, for example, by the communication forwarding module 210 ofFIG. 2. In embodiments, a user may request that the communication beoutput for display, and in response, the CPE device may output a promptto a display device, the prompt requesting that the user input a validPIN/password. For example, the CPE device may be configured with aPIN/password to protect the privacy of certain communications. The CPEdevice (e.g., the communication forwarding module 210) may compare areceived PIN/password to a PIN/password with which the CPE device isconfigured, and if the PIN/password received from the user matches thePIN/password configured at the CPE device, the determination may be madethat a valid PIN/password has been received.

At 435, the communication and/or information associated with thecommunication may be output for display. The communication informationmay be output, for example, by the communication forwarding module 210of FIG. 2 to a connected or associated display device (e.g., clientdevice 105 of FIG. 1). In embodiments, the communication information mayinclude a telephone voice or text message, a telephone call, calleridentification information (e.g., caller name, location, phone number,etc.), a notification, a reminder, or other content or informationassociated with a message received at the CPE device.

FIG. 5 is a flowchart illustrating an example process 500 operable tofacilitate the selective forwarding of communication information basedon the number of times a communication is delivered to a device. Theprocess 500 can begin at 505, when a communication is received at a CPEdevice. The CPE device may be an access device 110 of FIG. 1, a STB 115of FIG. 1, or any other device configured to provide one or moreservices to a client device (e.g., client device 105 of FIG. 1). Thereceived communication may be a telephone call or message, anappointment or calendar reminder, an electronic mail message, anotification of a received message, communication information (e.g.,caller identification information), and various other types ofcommunications.

At 510, a version identifier of the communication may be determined. Theversion identifier may be determined, for example, by the communicationforwarding module 210 of FIG. 2. In embodiments the version identifiermay be parsed from the received communication and analyzed by thecommunication forwarding module 210. The version identifier may includean identifier that indicates a certain version of the communication.

At 515, a determination may be made whether a message having the sameversion identifier as the version identifier of the receivedcommunication has been received at the CPE device more than a thresholdnumber of times. The determination whether the same version identifieras the version identifier of the received communication has beenreceived at the CPE device more than a threshold number of times may bemade, for example, by the communication forwarding module 210 of FIG. 2.In embodiments, the communication forwarding module 210 may compare theversion identifier to one or more previously received versionidentifiers, and a count may be maintained for each of the previouslyreceived version identifiers (e.g., the version identifiers and countsmay be stored at the privacy settings data store 215 of FIG. 2).

If, at 515, the determination is made that the same version identifieras the version identifier of the received communication has beenreceived at the CPE device more than a threshold number of times, theprocess 500 may proceed to 520. At 520, communication informationassociated with the received communication may be output for display.The communication information may be output, for example, by thecommunication forwarding module 210 of FIG. 2 to a connected orassociated display device (e.g., client device 105 of FIG. 1). Inembodiments, the communication information may include a telephone voiceor text message, a telephone call, caller identification information(e.g., caller name, location, phone number, etc.), a notification, areminder, or other content or information associated with a messagereceived at the CPE device.

If, at 515, the determination is made that the same version identifieras the version identifier of the received communication has not beenreceived at the CPE device more than a threshold number of times, theprocess 500 may proceed to 525. At 525, a notification of thecommunication being received may be output. The notification of thecommunication being received may be output, for example, by thecommunication forwarding module 210 of FIG. 2 to a connected orassociated display device (e.g., client device 105 of FIG. 1). Inembodiments, the notification may only include enough information toinform a viewer that a communication has been received. For example, toprotect the privacy of the message, the notification may not include anyinformation identifying the sender or the content of the receivedcommunication. In embodiments, when the determination is made that thecommunication is to be protected, the communication forwarding module210 may cause the communication and/or information associated with thecommunication to be temporarily stored or cached at the CPE device(e.g., at the communication information data store 220 of FIG. 2). Theversion identifier may be added to a list of previously received versionidentifiers, or if the version identifier already exists in the list ofpreviously received version identifiers, a count of the number of timesthe version identifier has been received may be incremented. Forexample, the list of previously received version identifiers may bestored at the privacy settings data store 215 of FIG. 2.

At 530, a valid PIN/password may be received. The valid PIN/password maybe received, for example, by the communication forwarding module 210 ofFIG. 2. In embodiments, a user may request that the communication beoutput for display, and in response, the CPE device may output a promptto a display device, the prompt requesting that the user input a validPIN/password. For example, the CPE device may be configured with aPIN/password to protect the privacy of certain communications. The CPEdevice (e.g., the communication forwarding module 210) may compare areceived PIN/password to a PIN/password with which the CPE device isconfigured, and if the PIN/password received from the user matches thePIN/password configured at the CPE device, the determination may be madethat a valid PIN/password has been received.

At 535, the communication and/or information associated with thecommunication may be output for display. The communication informationmay be output, for example, by the communication forwarding module 210of FIG. 2 to a connected or associated display device (e.g., clientdevice 105 of FIG. 1). In embodiments, the communication information mayinclude a telephone voice or text message, a telephone call, calleridentification information (e.g., caller name, location, phone number,etc.), a notification, a reminder, or other content or informationassociated with a message received at the CPE device.

FIG. 6 is a block diagram of a hardware configuration 600 operable tofacilitate the selective forwarding of communication information. Thehardware configuration 600 can include a processor 610, a memory 620, astorage device 630, and an input/output device 640. Each of thecomponents 610, 620, 630, and 640 can, for example, be interconnectedusing a system bus 650. The processor 610 can be capable of processinginstructions for execution within the hardware configuration 600. In oneimplementation, the processor 610 can be a single-threaded processor. Inanother implementation, the processor 610 can be a multi-threadedprocessor. The processor 610 can be capable of processing instructionsstored in the memory 620 or on the storage device 630.

The memory 620 can store information within the hardware configuration600. In one implementation, the memory 620 can be a computer-readablemedium. In one implementation, the memory 620 can be a volatile memoryunit. In another implementation, the memory 620 can be a non-volatilememory unit.

In some implementations, the storage device 630 can be capable ofproviding mass storage for the hardware configuration 600. In oneimplementation, the storage device 630 can be a computer-readablemedium. In various different implementations, the storage device 630can, for example, include a hard disk device, an optical disk device,flash memory or some other large capacity storage device. In otherimplementations, the storage device 630 can be a device external to thehardware configuration 600.

The input/output device 640 provides input/output operations for thehardware configuration 600. In one implementation, the input/outputdevice 640 can include one or more of a network interface device (e.g.,an Ethernet card), a serial communication device (e.g., an RS-232 port),one or more universal serial bus (USB) interfaces (e.g., a USB 2.0port), one or more wireless interface devices (e.g., an 802.11 card),and/or one or more interfaces for outputting video and/or data servicesto a client device 105 of FIG. 1 (e.g., television, STB, computer,mobile device, tablet, etc.), an access device 110 of FIG. 1 (e.g.,gateway device, wireless router, network extender, etc.), or STB 115 ofFIG. 1. In embodiments, the input/output device can include driverdevices configured to send communications to, and receive communicationsfrom one or more networks (e.g., WAN 120 of FIG. 1, provider network 125of FIG. 1, local network, etc.).

Those skilled in the art will appreciate that the invention improvesupon methods and systems for forwarding communications to devicesassociated with a home network. Methods, systems and computer readablemedia described herein may facilitate the automatic identification of aneed for additional authentication based on a received private messageor PID, the urgency of a received private message, thus determiningwhether an immediate alert is output to a user, and/or a determinationwhether a protected message is to be archived for later retrieval viaauthentication. A device may be configured (e.g., by user input) tocontrol selective decoding and display of messages (e.g., privatemessages), registration and configuration of blacklists, and/or definingcriteria for determining urgency of a received message. Deviceconfigurations may be dynamically changed or updated according to userpreferences and user treatment of received messages.

The subject matter of this disclosure, and components thereof, can berealized by instructions that upon execution cause one or moreprocessing devices to carry out the processes and functions describedabove. Such instructions can, for example, comprise interpretedinstructions, such as script instructions, e.g., JavaScript orECMAScript instructions, or executable code, or other instructionsstored in a computer readable medium.

Implementations of the subject matter and the functional operationsdescribed in this specification can be provided in digital electroniccircuitry, or in computer software, firmware, or hardware, including thestructures disclosed in this specification and their structuralequivalents, or in combinations of one or more of them. Embodiments ofthe subject matter described in this specification can be implemented asone or more computer program products, i.e., one or more modules ofcomputer program instructions encoded on a tangible program carrier forexecution by, or to control the operation of, data processing apparatus.

A computer program (also known as a program, software, softwareapplication, script, or code) can be written in any form of programminglanguage, including compiled or interpreted languages, or declarative orprocedural languages, and it can be deployed in any form, including as astand-alone program or as a module, component, subroutine, or other unitsuitable for use in a computing environment. A computer program does notnecessarily correspond to a file in a file system. A program can bestored in a portion of a file that holds other programs or data (e.g.,one or more scripts stored in a markup language document), in a singlefile dedicated to the program in question, or in multiple coordinatedfiles (e.g., files that store one or more modules, sub programs, orportions of code). A computer program can be deployed to be executed onone computer or on multiple computers that are located at one site ordistributed across multiple sites and interconnected by a communicationnetwork.

The processes and logic flows described in this specification areperformed by one or more programmable processors executing one or morecomputer programs to perform functions by operating on input data andgenerating output thereby tying the process to a particular machine(e.g., a machine programmed to perform the processes described herein).The processes and logic flows can also be performed by, and apparatuscan also be implemented as, special purpose logic circuitry, e.g., anFPGA (field programmable gate array) or an ASIC (application specificintegrated circuit).

Computer readable media suitable for storing computer programinstructions and data include all forms of non-volatile memory, mediaand memory devices, including by way of example semiconductor memorydevices (e.g., EPROM, EEPROM, and flash memory devices); magnetic disks(e.g., internal hard disks or removable disks); magneto optical disks;and CD ROM and DVD ROM disks. The processor and the memory can besupplemented by, or incorporated in, special purpose logic circuitry.

While this specification contains many specific implementation details,these should not be construed as limitations on the scope of anyinvention or of what may be claimed, but rather as descriptions offeatures that may be specific to particular embodiments of particularinventions. Certain features that are described in this specification inthe context of separate embodiments can also be implemented incombination in a single embodiment. Conversely, various features thatare described in the context of a single embodiment can also beimplemented in multiple embodiments separately or in any suitablesubcombination. Moreover, although features may be described above asacting in certain combinations and even initially claimed as such, oneor more features from a claimed combination can in some cases be excisedfrom the combination, and the claimed combination may be directed to asubcombination or variation of a sub combination.

Similarly, while operations are depicted in the drawings in a particularorder, this should not be understood as requiring that such operationsbe performed in the particular order shown or in sequential order, orthat all illustrated operations be performed, to achieve desirableresults. In certain circumstances, multitasking and parallel processingmay be advantageous. Moreover, the separation of various systemcomponents in the embodiments described above should not be understoodas requiring such separation in all embodiments, and it should beunderstood that the described program components and systems cangenerally be integrated together in a single software product orpackaged into multiple software products.

Particular embodiments of the subject matter described in thisspecification have been described. Other embodiments are within thescope of the following claims. For example, the actions recited in theclaims can be performed in a different order and still achieve desirableresults, unless expressly noted otherwise. As one example, the processesdepicted in the accompanying figures do not necessarily require theparticular order shown, or sequential order, to achieve desirableresults. In some implementations, multitasking and parallel processingmay be advantageous.

We claim:
 1. A method comprising: receiving a communication at acustomer premise equipment device; identifying a property of thereceived communication; comparing the identified property to one or moreprivate communication properties, the one or more private communicationproperties comprising properties of communications that are designatedfor privacy protection; if the identified property does not match atleast one of the one or more properties, outputting informationassociated with the communication to a display; and if the identifiedproperty does match at least one of the one or more properties,refraining from outputting, to a display, information associated withthe communication until a valid passcode is received.
 2. The method ofclaim 1, wherein the identified property of the received communicationcomprises a packet identifier, and wherein the one or more privatecommunication properties comprise one or more packet identifiersdesignated for privacy protection.
 3. The method of claim 1, wherein theidentified property of the received communication comprises a sourceidentifier, and wherein the one or more private communication propertiescomprise one or more source identifiers designated for privacyprotection.
 4. The method of claim 1, wherein: the identified propertyof the received communication comprises a version identifier; and theone or more private communication properties comprise one or moreversion identifiers and, for each respective version identifier, a countof the number of times a communication having the respective versionidentifier has been previously received at the customer premiseequipment device.
 5. The method of claim 1, further comprising: if theidentified property does match at least one of the one or moreproperties: outputting a notification to a user that a privacy protectedcommunication has been received at the customer premise equipmentdevice; receiving a valid passcode; and outputting informationassociated with the communication to a display.
 6. The method of claim5, wherein the notification comprises a prompt requesting entry of avalid passcode.
 7. The method of claim 5, further comprising: storinginformation associated with the communication at the customer premiseequipment device.
 8. An apparatus comprising: one or more interfacesconfigured to be used to receive a communication; and one or moremodules configured to: identify a property of the receivedcommunication; compare the identified property to one or more privatecommunication properties, the one or more private communicationproperties comprising properties of communications that are designatedfor privacy protection; if the identified property does not match atleast one of the one or more properties, output information associatedwith the communication to a display; and if the identified property doesmatch at least one of the one or more properties, refrain fromoutputting, to a display, information associated with the communicationuntil a valid passcode is received.
 9. The apparatus of claim 8, whereinthe identified property of the received communication comprises a packetidentifier, and wherein the one or more private communication propertiescomprise one or more packet identifiers designated for privacyprotection.
 10. The apparatus of claim 8, wherein the identifiedproperty of the received communication comprises a source identifier,and wherein the one or more private communication properties compriseone or more source identifiers designated for privacy protection. 11.The apparatus of claim 8, wherein: the identified property of thereceived communication comprises a version identifier; and the one ormore private communication properties comprise one or more versionidentifiers and, for each respective version identifier, a count of thenumber of times a communication having the respective version identifierhas been previously received at the customer premise equipment device.12. The apparatus of claim 8, wherein, if the identified property doesmatch at least one of the one or more properties, the one or moremodules are further configured to: output a notification to a user thata privacy protected communication has been received at the customerpremise equipment device; receive a valid passcode; and outputinformation associated with the communication to a display.
 13. Theapparatus of claim 12, wherein the notification comprises a promptrequesting entry of a valid passcode.
 14. One or more non-transitorycomputer readable media having instructions operable to cause one ormore processors to perform the operations comprising: receiving acommunication at a customer premise equipment device; identifying aproperty of the received communication; comparing the identifiedproperty to one or more private communication properties, the one ormore private communication properties comprising properties ofcommunications that are designated for privacy protection; if theidentified property does not match at least one of the one or moreproperties, outputting information associated with the communication toa display; and if the identified property does match at least one of theone or more properties, refraining from outputting, to a display,information associated with the communication until a valid passcode isreceived.
 15. The one or more non-transitory computer-readable media ofclaim 14, wherein the identified property of the received communicationcomprises a packet identifier, and wherein the one or more privatecommunication properties comprise one or more packet identifiersdesignated for privacy protection.
 16. The one or more non-transitorycomputer-readable media of claim 14, wherein the identified property ofthe received communication comprises a source identifier, and whereinthe one or more private communication properties comprise one or moresource identifiers designated for privacy protection.
 17. The one ormore non-transitory computer-readable media of claim 14, wherein: theidentified property of the received communication comprises a versionidentifier; and the one or more private communication propertiescomprise one or more version identifiers and, for each respectiveversion identifier, a count of the number of times a communicationhaving the respective version identifier has been previously received atthe customer premise equipment device.
 18. The one or morenon-transitory computer-readable media of claim 14, wherein, if theidentified property does match at least one of the one or moreproperties, the instructions are further operable to cause one or moreprocessors to perform the operations comprising: outputting anotification to a user that a privacy protected communication has beenreceived at the customer premise equipment device; receiving a validpasscode; and outputting information associated with the communicationto a display.
 19. The one or more non-transitory computer-readable mediaof claim 18, wherein the notification comprises a prompt requestingentry of a valid passcode.
 20. The one or more non-transitorycomputer-readable media of claim 18, further comprising: storinginformation associated with the communication at the customer premiseequipment device.